MSBlast copycat set to pounce, firm says

MSBlast copycat set to pounce, firm says
By Ina Fried
CNET News.com
September 16, 2003, 5:42 PM PT

Tools now exist to exploit a recently announced Windows flaw, further increasing the likelihood that new viruses will emerge soon, a security firm has warned. Ken Dunham, an analyst at Reston, Va.-based iDefense, said Tuesday it is "highly likely" that new worms or Trojan horses will emerge in the next few days. They are expected to prey on computers that have not been updated with the latest security patch for Microsoft's operating system.

"A new Blaster-like worm family could be created in a matter of hours or days, now that exploit source code has been posted in the underground," Dunham wrote in an e-mail. "The new attack tool makes it trivial for any malicious actor to gain unauthorized root access to an unpatched computer."

Experts advised people last week that a new virus was reasonably likely, given the fact that the recently discovered Windows vulnerabilities are similar to those that paved the way for the MSBlast worm, which is also known as Blaster.

Microsoft is using the warning as a way to remind individuals and companies to install the patch that it made available when it sent out an alert about the latest flaw on Wednesday. Dunham echoed the software maker's advice.

"Computers that have been patched for the...vulnerability thwart this attack," he said. "Unfortunately, a large number of computers remain unpatched."

Microsoft has seen the sample code identified by iDefense and is in the process of reviewing it, according to Amy Carroll, director of product management in a Microsoft security unit.

"It's another reminder of the need to patch," she said. "That message is getting out."

Carroll noted that in the first five days since Microsoft announced the latest vulnerabilities, 63 percent more people downloaded the patch for them than did in the same period for the vulnerability that led to MSBlast.

Carroll also encouraged individual Windows customers to make sure they are using a firewall and antivirus software.

Even as Microsoft explores longer-term ways of improving security, the company is trying to make more modest but immediate improvements to its software, Carroll said. For example, the Redmond, Wash.-based company has added to its Web site a tool that, with a person's permission, checks to see if Windows is set to automatically download and install new patches and whether firewall software is turned on.

Hmmmm....I got two of the following messages today - I suspect there's some creeps taking advantage of all of this stuff with Microsoft... Date: Wed, 17 Sep 2003 09:19:14 -0700 (PDT) From: "Microsoft" To: <goodnesswins Subject: Use this patch immediately ! Content-Type: text/plain; Content-Transfer-Encoding: 7bit Dear friend , use this Internet Explorer patch now! There are dangerous virus in the Internet now! More than 500.000 already infected! c:\program files\qualcomm\eudora\attach\patch1.exe;

For example, the Redmond, Wash.-based company has added to its Web site a tool that, with a person's permission, checks to see if Windows is set to automatically download and install new patches and whether firewall software is turned on.

It's always been my contention that Bill Gates intends to create a computer environment that encourages an annual payment to Microsoft as simply a part of owning and running a computer.

There are several ways he is working towards this end, and, I believe, the use of fear of computer virus attacks is one of those ways. After it becomes apparent that "everybody" (using Windows) is vulnerable to frequent virus attacks there will be a large market of people wondering "How can I possibly keep up with all these protective patches that I need to install for my computer?" And, at that point, Micro$oft will simply step in with the offer to keep any users computer up-to-date with all the latest virus patches.. for a small fee, of course. You just have to send them a check and give them complete, unfettered, remote access to your computer is all.

I'm not saying that M$ caused these virus attacks on their operating system, but I am saying that Bill Gates will make use of this situation to benefit his own bottom line.

Once you have the people conditioned to sending in a check every year, or every month, for the continued use of their computers, then it's all price increases and gravy after that!

Punch line: Get yourself out of that rut! Try Linux. You don't have to go completely over all at once. You can install Linux on a small partition and play around with it in your spare time.

Get yourself some root!

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.